* [Qemu-devel] public key not found?
@ 2013-09-04 11:47 Michael S. Tsirkin
2013-09-04 13:11 ` Anthony Liguori
0 siblings, 1 reply; 6+ messages in thread
From: Michael S. Tsirkin @ 2013-09-04 11:47 UTC (permalink / raw)
To: Anthony Liguori, qemu-devel
I noticed recent merges of the pci tree have this text:
# gpg: Signature made Sun 01 Sep 2013 03:15:36 AM CDT using RSA key
# ID D28D5469
# gpg: Can't check signature: public key not found
Why is that?
Linus seems to have no trouble pulling trees with this
signature, and pulls don't have this error message.
--
MST
^ permalink raw reply [flat|nested] 6+ messages in thread* Re: [Qemu-devel] public key not found? 2013-09-04 11:47 [Qemu-devel] public key not found? Michael S. Tsirkin @ 2013-09-04 13:11 ` Anthony Liguori 2013-09-04 14:30 ` Paolo Bonzini 2013-09-04 16:08 ` Andreas Färber 0 siblings, 2 replies; 6+ messages in thread From: Anthony Liguori @ 2013-09-04 13:11 UTC (permalink / raw) To: Michael S. Tsirkin; +Cc: qemu-devel On Wed, Sep 4, 2013 at 6:47 AM, Michael S. Tsirkin <mst@redhat.com> wrote: > I noticed recent merges of the pci tree have this text: > > # gpg: Signature made Sun 01 Sep 2013 03:15:36 AM CDT using RSA key > # ID D28D5469 > # gpg: Can't check signature: public key not found > > Why is that? Because I haven't signed your key. We'll address this at this year's KVM Forum: http://wiki.qemu.org/KeySigningParty2013 > Linus seems to have no trouble pulling trees with this > signature, and pulls don't have this error message. I'm not sure how wide Linus extends his trust. We have a much smaller pool of submaintainers and I've met most in person at some point so I'm going to try to keep it as tight as possible. Regards, Anthony Liguori > -- > MST ^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: [Qemu-devel] public key not found? 2013-09-04 13:11 ` Anthony Liguori @ 2013-09-04 14:30 ` Paolo Bonzini 2013-09-04 16:08 ` Andreas Färber 1 sibling, 0 replies; 6+ messages in thread From: Paolo Bonzini @ 2013-09-04 14:30 UTC (permalink / raw) To: Anthony Liguori; +Cc: qemu-devel, Michael S. Tsirkin Il 04/09/2013 15:11, Anthony Liguori ha scritto: > On Wed, Sep 4, 2013 at 6:47 AM, Michael S. Tsirkin <mst@redhat.com> wrote: >> I noticed recent merges of the pci tree have this text: >> >> # gpg: Signature made Sun 01 Sep 2013 03:15:36 AM CDT using RSA key >> # ID D28D5469 >> # gpg: Can't check signature: public key not found >> >> Why is that? > > Because I haven't signed your key. We'll address this at this year's KVM Forum: > > http://wiki.qemu.org/KeySigningParty2013 > >> Linus seems to have no trouble pulling trees with this >> signature, and pulls don't have this error message. > > I'm not sure how wide Linus extends his trust. Getting a kernel.org account requires 3 signatures from someone else who has a kernel.org account *and* communicating the particular key to the kernel.org sysadmins. So I guess Linus extends his trust to all keys that were processed this way, or something like that. Paolo ^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: [Qemu-devel] public key not found? 2013-09-04 13:11 ` Anthony Liguori 2013-09-04 14:30 ` Paolo Bonzini @ 2013-09-04 16:08 ` Andreas Färber 2013-09-04 16:13 ` Anthony Liguori 2013-09-04 16:15 ` Eric Blake 1 sibling, 2 replies; 6+ messages in thread From: Andreas Färber @ 2013-09-04 16:08 UTC (permalink / raw) To: Anthony Liguori, Eric Blake; +Cc: qemu-devel, Michael S. Tsirkin Am 04.09.2013 15:11, schrieb Anthony Liguori: > On Wed, Sep 4, 2013 at 6:47 AM, Michael S. Tsirkin <mst@redhat.com> wrote: >> I noticed recent merges of the pci tree have this text: >> >> # gpg: Signature made Sun 01 Sep 2013 03:15:36 AM CDT using RSA key >> # ID D28D5469 >> # gpg: Can't check signature: public key not found >> >> Why is that? > > Because I haven't signed your key. We'll address this at this year's KVM Forum: > > http://wiki.qemu.org/KeySigningParty2013 Doesn't "public key not found" rather indicate that you have not imported that key to your keyring yet, not even with untrusted status? Some days ago I had asked about the indicated keyserver.cryptnet.net, which was ping'able but not reachable via http, https, ldap or hkp. Today there is a Fedora Apache test page via http, but still no success using that server with Seahorse. Eric was said to have succeeded in uploading his key there? Usually it is no problem configuring multiple key servers for you to obtain our (untrusted) keys to at least improve the error message. :) Regards, Andreas -- SUSE LINUX Products GmbH, Maxfeldstr. 5, 90409 Nürnberg, Germany GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer; HRB 16746 AG Nürnberg ^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: [Qemu-devel] public key not found? 2013-09-04 16:08 ` Andreas Färber @ 2013-09-04 16:13 ` Anthony Liguori 2013-09-04 16:15 ` Eric Blake 1 sibling, 0 replies; 6+ messages in thread From: Anthony Liguori @ 2013-09-04 16:13 UTC (permalink / raw) To: Andreas Färber; +Cc: qemu-devel, Michael S. Tsirkin On Wed, Sep 4, 2013 at 11:08 AM, Andreas Färber <afaerber@suse.de> wrote: > Am 04.09.2013 15:11, schrieb Anthony Liguori: >> On Wed, Sep 4, 2013 at 6:47 AM, Michael S. Tsirkin <mst@redhat.com> wrote: >>> I noticed recent merges of the pci tree have this text: >>> >>> # gpg: Signature made Sun 01 Sep 2013 03:15:36 AM CDT using RSA key >>> # ID D28D5469 >>> # gpg: Can't check signature: public key not found >>> >>> Why is that? >> >> Because I haven't signed your key. We'll address this at this year's KVM Forum: >> >> http://wiki.qemu.org/KeySigningParty2013 > > Doesn't "public key not found" rather indicate that you have not > imported that key to your keyring yet, not even with untrusted status? > > Some days ago I had asked about the indicated keyserver.cryptnet.net, > which was ping'able but not reachable via http, https, ldap or hkp. > Today there is a Fedora Apache test page via http, but still no success > using that server with Seahorse. > > Eric was said to have succeeded in uploading his key there? > > Usually it is no problem configuring multiple key servers for you to > obtain our (untrusted) keys to at least improve the error message. :) Yeah, I'm not going to wait until KVM Forum to work this all out but suffice to say, it's not a high priority just yet. Regards, Anthony Liguori > > Regards, > Andreas > > -- > SUSE LINUX Products GmbH, Maxfeldstr. 5, 90409 Nürnberg, Germany > GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer; HRB 16746 AG Nürnberg ^ permalink raw reply [flat|nested] 6+ messages in thread
* Re: [Qemu-devel] public key not found? 2013-09-04 16:08 ` Andreas Färber 2013-09-04 16:13 ` Anthony Liguori @ 2013-09-04 16:15 ` Eric Blake 1 sibling, 0 replies; 6+ messages in thread From: Eric Blake @ 2013-09-04 16:15 UTC (permalink / raw) To: Andreas Färber; +Cc: qemu-devel, Anthony Liguori, Michael S. Tsirkin [-- Attachment #1: Type: text/plain, Size: 2036 bytes --] On 09/04/2013 10:08 AM, Andreas Färber wrote: > Am 04.09.2013 15:11, schrieb Anthony Liguori: >> On Wed, Sep 4, 2013 at 6:47 AM, Michael S. Tsirkin <mst@redhat.com> wrote: >>> I noticed recent merges of the pci tree have this text: >>> >>> # gpg: Signature made Sun 01 Sep 2013 03:15:36 AM CDT using RSA key >>> # ID D28D5469 >>> # gpg: Can't check signature: public key not found >>> >>> Why is that? >> >> Because I haven't signed your key. We'll address this at this year's KVM Forum: >> >> http://wiki.qemu.org/KeySigningParty2013 > > Doesn't "public key not found" rather indicate that you have not > imported that key to your keyring yet, not even with untrusted status? > > Some days ago I had asked about the indicated keyserver.cryptnet.net, > which was ping'able but not reachable via http, https, ldap or hkp. > Today there is a Fedora Apache test page via http, but still no success > using that server with Seahorse. > > Eric was said to have succeeded in uploading his key there? If I recall, I had to upload my key by pasting it into the form on the web-page, rather than my typical procedure of 'gpg --send-keys ...' with a specific keyserver listing. Don't know why the site seems to have gone down in the meantime. > > Usually it is no problem configuring multiple key servers for you to > obtain our (untrusted) keys to at least improve the error message. :) In particular, a lot of the keyservers participate in a sharing setup, so that if you put your keys on one, they will show up in others within a few hours. I may be showing some bias, but I like: Web interface at http://keys.fedoraproject.org or https://keys.fedoraproject.org HKP (keyserver protocol) by doing "gpg --keyserver keys.fedoraproject.org --recv-keys 0x110810E9" (just an example) You could also put in ~/.gnupg/gpg.conf: keyserver hkp://keys.fedoraproject.org -- Eric Blake eblake redhat com +1-919-301-3266 Libvirt virtualization library http://libvirt.org [-- Attachment #2: OpenPGP digital signature --] [-- Type: application/pgp-signature, Size: 621 bytes --] ^ permalink raw reply [flat|nested] 6+ messages in thread
end of thread, other threads:[~2013-09-04 16:15 UTC | newest] Thread overview: 6+ messages (download: mbox.gz follow: Atom feed -- links below jump to the message on this page -- 2013-09-04 11:47 [Qemu-devel] public key not found? Michael S. Tsirkin 2013-09-04 13:11 ` Anthony Liguori 2013-09-04 14:30 ` Paolo Bonzini 2013-09-04 16:08 ` Andreas Färber 2013-09-04 16:13 ` Anthony Liguori 2013-09-04 16:15 ` Eric Blake
This is a public inbox, see mirroring instructions for how to clone and mirror all data and code used for this inbox; as well as URLs for NNTP newsgroup(s).